372 matches found
The vulnerability of the software for data integration and analysis in Hitachi Vantara Pentaho Data Integration & Analytics lies in the insufficient protection of registration data, which allows attackers to disclose confidential information.
The vulnerability of the software for data integration and analytics in Hitachi Vantara Pentaho Data Integration & Analytics relates to insufficient protection of registration data. Exploiting this vulnerability could allow a malicious actor to disclose confidential information...
The vulnerability of the software for data integration and analytics in Hitachi Vantara Pentaho Data Integration & Analytics lies in the insufficient protection of registration data, allowing unauthorized access to protected information by attackers.
The vulnerability of the software for data integration and analytics in Hitachi Vantara Pentaho Data Integration & Analytics lies in the insufficient protection of registration data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to...
The vulnerability of the runas function in the microprogramming software of the digital analysis system MEAC300 allows a hacker to elevate their privileges to the level of an administrator.
The vulnerability of the runas function in the MEAC300 digital analysis system is related to insufficient protection for registration data. Exploiting this vulnerability can allow an attacker, operating remotely, to elevate their privileges to the level of an administrator...
The vulnerability of the FactoryTalk AssetCentre software, a centralized asset management system, lies in the insufficient protection of registration data, which allows attackers to disclose sensitive information.
The vulnerability of the FactoryTalk AssetCentre software for centralized asset management lies in the insufficient protection of registration data. Exploiting this vulnerability could allow attackers to disclose sensitive information that is protected by security measures...
The vulnerability of the EventLogAttachmentExtractor, ArchiveExtractor, LogCleanUp, or ArchiveLogCleanUp packages of the FactoryTalk AssetCentre software solution allows a perpetrator to disclose protected information.
The vulnerability of the EventLogAttachmentExtractor, ArchiveExtractor, LogCleanUp, or ArchiveLogCleanUp packages of the FactoryTalk AssetCentre centralized asset management software is related to insufficient protection of registration data. Exploiting this vulnerability could allow an attacker ...
The vulnerability of the data export function of the Kyocera Net Viewer software, a monitoring and control device for multifunctional devices, allows a perpetrator to disclose protected information.
The vulnerability of the data export function of the Kyocera Net Viewer monitoring and control software relates to insufficient protection of registration data. Exploiting this vulnerability can allow a malicious actor to disclose the protected information remotely...
The vulnerability of the Windows operating system’s kernel allows attackers to disclose sensitive information that is protected by security measures.
The vulnerability of the Windows operating system’s kernel is related to insufficient protection of registration data. Exploiting this vulnerability can allow an attacker to disclose the protected information...
The vulnerability of the Windows operating system’s kernel allows attackers to disclose sensitive information that is protected by security measures.
The vulnerability of the Windows operating system’s kernel is related to insufficient protection of registration data. Exploiting this vulnerability can allow an attacker to disclose the protected information...
PT-2025-1121 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to insufficient protection of registration data in the Windows kernel, which can be exploited to disclose protected information. This can allow an attacker to obtain...
The vulnerabilities of vSphere CPI (Cloud Provider Interface) and vSphere CSI (Container Storage Interface), which are software platforms for deploying containers in a production environment, allow attackers to exploit them to disclose sensitive information.
The vulnerability of vSphere CPI Cloud Provider Interface and vSphere CSI Container Storage Interface, two components of the software platform for container deployment in a production environment, is related to insufficient protection of registration data. Exploiting this vulnerability can allow ...
The vulnerability of the CI/CD application integration and delivery system provided by JetBrains TeamCity, related to insufficient protection of registration data, allows attackers to disclose protected information.
The vulnerability of the Continuous Integration and Deployment application delivery system CI/CD of TeamCity in JetBrains is related to insufficient protection for registration data. Exploiting this vulnerability could allow a malicious actor to disclose the protected information...
PT-2024-9848 · Jetbrains · Teamcity
Name of the Vulnerable Software and Affected Versions: JetBrains TeamCity versions prior to 2024.12 Description: The issue is related to insufficient protection of registration data in JetBrains TeamCity, a continuous integration and continuous delivery CI/CD system. This allows a remote attacker...
The vulnerability in virtual and physical systems of Veeam Backup & Replication lies in the insufficient protection of registration data, allowing attackers to execute arbitrary codes.
The vulnerability of virtual and physical systems managed by Veeam Backup & Replication is related to insufficient protection of registration data. Exploiting these vulnerabilities could allow a malicious actor, operating remotely, to execute arbitrary code...
The vulnerability of the remote management interface of the Veeam Backup & Replication software for cloud, virtual, and physical systems allows a perpetrator to disclose protected information.
The vulnerability of the remote management interface of the Veeam Backup & Replication software for cloud, virtual, and physical systems is related to insufficient protection of registration data. Exploiting these vulnerabilities could allow a malicious actor to disclose the protected information...
The vulnerability of microprogramming software in embedded network control controllers of ASPECT Enterprise, NEXUS Series, and MATRIX Series buildings lies in the insufficient protection of registration data, allowing attackers to escalate their privileges.
The vulnerability of microprogramming software in embedded network control controllers of ASPECT Enterprise, NEXUS Series, and MATRIX Series buildings is related to insufficient protection for registration data. Exploiting this vulnerability can allow an attacker, operating remotely, to increase...
The vulnerability of SAP NetWeaver Java software update, related to insufficient protection of registration data, allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the SAP NetWeaver Java software update manager is related to insufficient protection of registration data. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information...
The vulnerability of the “Allow Direct Connections” function in remote access and management software like AnyDesk allows a hacker to disclose protected information about the target system’s IP address.
The vulnerability of the “Allow Direct Connections” function in the remote access and management software AnyDesk is related to insufficient protection of registration data. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information about the target system’s IP...
The vulnerability of the LuCI web interface in the embedded operating system OpenWrt allows a hacker to elevate their privileges to the root level.
The vulnerability of the LuCI web interface in the embedded operating system OpenWrt is related to insufficient protection of registration data. Exploiting this vulnerability allows a malicious actor to elevate their privileges to the root level using the JSON-RPC API...
The vulnerability of the CI/CD system’s registration data protection mechanism in TeamCity allows attackers to compromise user passwords.
The vulnerability of the Continuous Integration and Deployment application delivery system CI/CD of TeamCity in JetBrains is related to insufficient protection for registration data. Exploiting this vulnerability could allow a malicious actor to obtain user passwords through the Sonar Runner REST...
PT-2024-7903
Name of the Vulnerable Software and Affected Versions: OpenWRT Luci LTS affected versions not specified Description: An issue in the luci-mod-rpc package allows for privilege escalation from an admin account to root via the JSON-RPC-API, which is exposed by the luci-mod-rpc package. The...